Unrated severityNVD Advisory· Published Jul 31, 2024· Updated Jul 31, 2024
Slider by 10Web < 1.2.57 - Editor+ Stored XSS
CVE-2024-6408
Description
The Slider by 10Web WordPress plugin before 1.2.57 does not sanitise and escape its Slider Title, which could allow high privilege users such as editors and above to perform Cross-Site Scripting attacks even when unfiltered_html is disallowed
Affected products
1- Range: 0
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
1- wpscan.com/vulnerability/31aaeffb-a752-4941-9d0f-1b374fbc7abb/mitreexploitvdb-entrytechnical-description
News mentions
0No linked articles in our index yet.